IBM » Lotus Quickplace : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in leg/Main.nsf in IBM Lotus Quickplace 7.0 allows remote attackers to inject arbitrary web script or HTML via an h_SearchString sub-parameter in the PreSetFields parameter of an EditDocument action.
Max CVSS
4.3
EPSS Score
2.84%
Published
2008-02-21
Updated
2011-03-08
1 vulnerabilities found